Why is Nginx serving `index.html` instead of a 404?@Pothi - it's encouraged to the point that you can actually check a box while asking your question to provide the answer at the same time, which is what I did. :) I could have put this info in my personal notes, but I'd rather put it on the internet where it can help others.

Why do I need to purchase an SSL certificate when I can generate one locally?@tristan - it's an imperfect system, but cert authorities have some incentive to be trustworthy. Eg if they gave a random person a Google cert, they'd be removed from all browsers in short order. They also offer "extended validation" certs which, in theory, mean they do more checking. Any of them could decide that this requires in-person DNA tests if they thought it would bolster their reputation and earn them business.

Apr5

comment

Why shouldn't you let developers near root passwords?As a developer, I appreciate the collaborative relationship you imply. Unfortunately, often the developer and sysadmin are the same person, so the idea of being "cut off" may irritate some developers. I'd say that if you have dedicated sysadmins, giving up root access in exchange for not having to do both things is a nice deal.